setsubyou

It’s really not surprising that it’s so fast, since you can easily get newly created repos and repos made public from a github API (the “list public events” one at /events). Makes sense that people are polling this and feeding it to TruffleHog.

From the article

Bankman-Fried is being held at a low-security federal prison near Santa Barbara, California. He is eligible for release in 2044.

Wondering how much the AC could even do if the door is left open. But maybe the hassle is also having to turn it on again every time?

Chinese fakes, you have my blessing and my axe.

That but also if you’re not training and hosting your own model, your scanner is just subject to the same restrictions that your LLM provider applies to you on top of all the architectural problems.

1 in base 10 isn’t 1/10 and in hexadecimal it’s not 1/16.

Decimal integers in base pi are 1, 2, 3, 10.2201…, 11.2201…, 12.2201…, 20.2201… and so on.

Basically: 10.2201… = 1 * pi^1 + 0 * pi^0 + 2 * pi^-1 + 2 * pi^-2 … which approaches 4 as you add digits.

But 1 is just 1*pi^0

I’m not sure about specializing, but there’s a lot of stuff you can learn in the AI field that was useful before the current hype bubble and will remain useful going forward. Traditional ML is huge and doesn’t move quite as fast as e.g. LLM applications.

Some of these are arguably much more important for LLMs because of limited context sizes. The more of the code in the context window follows good practice, the more likely the LLM is to align with it. Any nonsense in the context window will multiply and beat that one document with the style guide that the LLM might not even see.

If the only problem is that your code is slop and nobody can work with it without AI, then it’s probably not that bad. Text models I can run locally on my five year old Macbook are maybe a year behind in terms of coding assistance. So AI for coding is probably never going away. The worst case for someone in this scenario is just that it gets a bit slower and dumber and that they have to hire more engineers again. It’ll suck but I think it’s survivable. Someone would have to make a new Stackoverflow though if we’re going to google stuff again.

Now if you integrated multiple AI services into all your business workflows and into the products you sell, on the other hand, that might be a different story. In a way the risk is the same as with cloud providers. You get locked into a stack and then your product literally dies if the provider decides you’re not paying enough, because you have no feasible way out. Tbh I would much prefer working at a post-bubble era software company fixing the codebase to working at a random company now extracting their IT from a hyperscale cloud. But in reality, most companies that bet on AI are in this scenario. Nobody only installed Claude and called it a day.

It’s not user replaceable but it’s not actually that hard to replace it, so this basically just takes work away from all those little repair shops. Still good for customers but probably not much of a difference for Nintendo.

None of them are profitable, they’re all selling their services at a loss

The word moron didn’t exist in English until ~80 years later though

We used to use completely separate tools for code review (in our case because the process was older than git). Some of them might be doing something similar.

If you use an editor or IDE that has extensions that can add to the context menu (e.g. VS Code), you can do this. Just tell your AI coding assistant of choice to build an extension for you.

I understand the sentiment, if you don’t like AI code generation you’re probably thinking you’re on the same side. But what happens if this person finds something else they hate that you don’t hate, and finds a way to sabotage that? They’ve already demonstrated a willingness to be destructive. And you’re running their code so they don’t need anything even remotely as dumb as some AI agents to exploit, they can just write destructive code normally.

I disagree with OP too, but I also think downvotes are not great for disagreement. I like them much more for marking something as wrong or off topic. Otherwise we just limit lemmy to a tool that finds the majority opinion, instead of being an actual discussion platform.

For example, OP starts a discussion and your comment that I disagree with is a legitimate opinion, so I won’t downvote either. But if someone tried to derail the discussion by commenting ramen recipes, I might downvote that.

I personally wouldn’t blame MCP, it’s just a protocol. My theory is the feature was vibe coded in the vulnerable tools and nobody thought about it much.

I think they have one (also built in India, but not sure which markets it’s sold in other than EU).

GPT Researcher is a research agent, just one of many AI tools.

I think the idea is that these tools let users configure mcp servers, and because mcp doesn’t necessarily use the network but can also just mean directly spawning a process, users can get the tool to execute arbitrary commands (possibly circumventing some kind of protection).

This is all fine if you’re doing this yourself on your computer, but it’s not if you’re hosting one of these tools for others who you didn’t expect to be able to run commands on your server, or if the tool can be made to do this by hostile input (e.g. a web page the tool is reading while doing a task).

In the US, the constitution can generally only be violated by government entities or by people acting on government authority. So it doesn’t really have punishments that apply to poor people as such. It has ones like impeachment of a president.